CVE-2018-19796

Publication date

2018-12-03 06:00:00

Family

mitre

State

PUBLISHED

Description

An open redirect in the Ninja Forms plugin before 3.3.19.1 for WordPress allows Remote Attackers to redirect a user via the lib/StepProcessing/step-processing.php (aka submissions download page) redirect parameter.